A critical security flaw (CVE-2025-5947, CVSS 9.8) has been discovered in the WordPress Service Finder theme that allows hackers to gain administrator access without a password. Over 6,100 sites using Service Finder versions 6.0 or earlier are vulnerable, and security researchers have already detected over 13,800 exploitation attempts in the wild. If you're using this theme, you need to update to version 6.1+ immediately and check if your site has been compromised. I've created a free PHP security scanner that will detect if you're vulnerable, scan your server logs for attack attempts, and provide .htaccess rules to block exploits - https://sevenlegend.io/?page=codes" target="_blank" rel="noopener">download it now from our code snippets page and run the check in under a minute. Don't wait until it's too late - this vulnerability could give attackers complete control of your website.